Overview

URL njkaitian.sooshong.com/
IP42.159.251.98
ASNAS58593 Microsoft Global Enterprise Services AP
Location China
Report completed2017-11-14 11:42:02 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-11-14 2 js.users.51.la/17771164.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 42.159.251.98

Date UQ / IDS / BL URL IP
2017-11-23 18:57:34 +0100
0 - 0 - 1 xwl123.sooshong.com/ 42.159.251.98
2017-11-23 17:33:44 +0100
0 - 0 - 1 newborn123.sooshong.com/ 42.159.251.98
2017-11-22 03:36:31 +0100
0 - 0 - 1 dufen3d.sooshong.com/ 42.159.251.98
2017-11-21 22:52:39 +0100
0 - 0 - 1 ucfdizfyx.sooshong.com/ 42.159.251.98
2017-11-18 11:33:15 +0100
0 - 0 - 1 lyklsj.sooshong.com/ 42.159.251.98
2017-11-03 09:58:32 +0100
0 - 0 - 1 sdlqklw6.sooshong.com/ 42.159.251.98
2017-11-01 09:19:30 +0100
0 - 0 - 1 simingqu.sooshong.com/ 42.159.251.98
2017-10-28 13:03:41 +0200
0 - 0 - 1 7ond6xo7.sooshong.com/ 42.159.251.98
2017-10-27 13:50:14 +0200
0 - 0 - 1 szchekumen.sooshong.com/ 42.159.251.98
2017-10-21 10:31:02 +0200
0 - 0 - 1 8ov4jsra.sooshong.com/link.htm 42.159.251.98

Last 10 reports on ASN: AS58593 Microsoft Global Enterprise Services AP

Date UQ / IDS / BL URL IP
2017-11-23 18:57:34 +0100
0 - 0 - 1 xwl123.sooshong.com/ 42.159.251.98
2017-11-23 17:33:44 +0100
0 - 0 - 1 newborn123.sooshong.com/ 42.159.251.98
2017-11-22 03:36:31 +0100
0 - 0 - 1 dufen3d.sooshong.com/ 42.159.251.98
2017-11-21 22:52:39 +0100
0 - 0 - 1 ucfdizfyx.sooshong.com/ 42.159.251.98
2017-11-21 16:00:14 +0100
0 - 0 - 1 139.217.27.203 139.217.27.203
2017-11-20 21:37:19 +0100
0 - 0 - 4 0763-3929999.com/ 42.159.237.196
2017-11-19 18:05:01 +0100
0 - 0 - 2 download.chasedream.com/gmat/rc/Gmat_Reading_ (...) 139.219.188.169
2017-11-18 11:33:15 +0100
0 - 0 - 1 lyklsj.sooshong.com/ 42.159.251.98
2017-11-15 21:12:47 +0100
0 - 1 - 0 huxuan.com.cn/vb/IE.exe 42.159.253.172
2017-11-15 21:02:10 +0100
0 - 0 - 0 139.217.27.203 139.217.27.203

No other reports on domain: sooshong.com



JavaScript

Executed Scripts (37)


Executed Evals (0)


Executed Writes (15)

#1 JavaScript::Write (size: 170, repeated: 1) - SHA256: f569ccfca15c51d3554f2239446194aa0809048e9ddf6fe603d5069d72381c06

                                        < a href = "https://www.51.la/?17771164"
target = "_blank"
title = "51.La &#x7F51;&#x7AD9;&#x6D41;&#x91CF;&#x7EDF;&#x8BA1;&#x7CFB;&#x7EDF;" > & # x7F51; & # x7AD9; & # x7EDF; & # x8BA1; < /a>
                                    

#2 JavaScript::Write (size: 48, repeated: 1) - SHA256: 9d2dd2d7dbebf2719c8ba87a79d5f06f108eb68c21a5ec5b4580db2ddb8afcce

                                        < div id = "_289wvs4q29f"
style = "width:100%" > < /div>
                                    

#3 JavaScript::Write (size: 48, repeated: 1) - SHA256: 95167223a5f4551109d290aea736571e44cf345290b09ca5ff6f4d2f55d7ccc1

                                        < div id = "_58diwdph73e"
style = "width:100%" > < /div>
                                    

#4 JavaScript::Write (size: 48, repeated: 1) - SHA256: d2edf5dc5c8beb2ad435c222a7840a5b1517bc24ae3a93963b6353a885361b8a

                                        < div id = "_eerhyf67uzi"
style = "width:100%" > < /div>
                                    

#5 JavaScript::Write (size: 48, repeated: 1) - SHA256: 8be0cb9abd3833053ec967fa859dde5f4ce54894acca2fe5d24456d73ccde2ec

                                        < div id = "_p8nfh889g4k"
style = "width:100%" > < /div>
                                    

#6 JavaScript::Write (size: 48, repeated: 1) - SHA256: 06f57a5b34513cc468c71aee04096a76688779fd98f4911628519b6ea0c2b6e2

                                        < div id = "_yysxwp2dtpm"
style = "width:100%" > < /div>
                                    

#7 JavaScript::Write (size: 48, repeated: 1) - SHA256: f391993b0a5fc691e7ab496c5622ec358c88072fb6fd117b6e1b3f552a844341

                                        < div id = "_z3rmltiqpci"
style = "width:100%" > < /div>
                                    

#8 JavaScript::Write (size: 56, repeated: 1) - SHA256: 5fa53e6b1e2e0a95b2f7969a140ddd577c87a471727410919f4a903febd8574b

                                        < li > < a href = "http://www.sooshong.com" > �FQ < /a></p > < /li>
                                    

#9 JavaScript::Write (size: 105, repeated: 1) - SHA256: 5e7c014cc24c664105e11afff229c6516c616a45e917cf18c17f69eb233dd45f

                                        < script src = ' http://hm.baidu.com/h.js?3a2bf59295995a637abc01fb61aeeb3d'
type = 'text/javascript' > < /script>
                                    

#10 JavaScript::Write (size: 94, repeated: 1) - SHA256: 5ab0f193a80159bde8c02a559100177a5fb13d32f60ddbf07a038f1b39d570dc

                                        < script type = 'text/javascript'
src = 'http://material.mediav.com/compile/pm/mvp_p1.js' > < /script>
                                    

#11 JavaScript::Write (size: 62, repeated: 1) - SHA256: eb9c64ff2b02ec9173d3a45d6b7b81fde12b65811552cbd015def51be07af902

                                        < script type = 'text/javascript' > function mv_scroll_441746525() {
                                    

#12 JavaScript::Write (size: 51, repeated: 1) - SHA256: ca9665591fee6fa270a3cfbb741cdc2568071ec54faf0b46de2de43d0ef911de

                                        clearInterval(scrollStatus_441746525);
}
} catch (e) {}
}
                                    

#13 JavaScript::Write (size: 90, repeated: 1) - SHA256: 867f1f9248c6bc7ce5bbdc871af48ede9cf11a21bfb0d0864be31bea05c61a15

                                        mvproduct.makep1(mvbd_441746525, 300, 250, [], mvas_441746525, mvtjs_441746525, mvax_441746525);
                                    

#14 JavaScript::Write (size: 110, repeated: 1) - SHA256: 8e3b9b0b242cdb4a69ca65a472f6c67a695e6ace7f75f605166bcb9704d98688

                                        var mvtjs_441746525 = 'http://material.mediav.com/compile/pm/mvp_p1.js';
try {
    if (mvproduct && mvproduct.makep1) {
                                    

#15 JavaScript::Write (size: 75, repeated: 1) - SHA256: c2583d5cd96427e7cc2d75682aef0f968fec1bc87f5506b5a1624a1e6deca0b7

                                        var scrollStatus_441746525 = setInterval(mv_scroll_441746525, 100); < /script>
                                    


HTTP Transactions (88)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/html;charset=gbk
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Vary: Accept-Encoding
Set-Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70; Path=/; HttpOnly
Expires: Tue, 14 Nov 2017 11:42:15 GMT
Cache-Control: max-age=3600
X-Cache: MISS from squid
Transfer-Encoding: chunked
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 HTML document text, with very long lines, with CRLF, LF line terminators
Size:   26788
Md5:    93d395b983fc4c6a545338eff44b9614
Sha1:   79de416c718c173794c622093da8595e325cbe92
Sha256: 4bab109dbffc7f5bc20a9c3dac4f4815ef9eb188366b2d7e9fa9b820d22a1a25
                                        
                                            GET /njkaitian/2328192010516213709.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /shophome/js/search.js HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /img/qq.gif HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 2997
Last-Modified: Wed, 25 Mar 2015 07:35:09 GMT
Etag: "5512652d-bb5"
Expires: Thu, 14 Dec 2017 10:42:15 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 77 x 22
Size:   2997
Md5:    7a3180e91ce67db4313157fda0fc2f80
Sha1:   bd8acc0736daf90de062ec8a0ad5dd59c34d8ec2
Sha256: b24dee570fee5294dffdbc5708a267c7004f8b69d5f208a4bc978c977a8b3320
                                        
                                            GET /shophome/img/vip.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 22306
Last-Modified: Wed, 25 Mar 2015 02:53:17 GMT
Etag: "5512231d-5722"
Expires: Thu, 14 Dec 2017 10:42:15 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   22306
Md5:    7b06d06e0343964b990c9a0fd896e77f
Sha1:   5d4d5619687deaf211bbfe246bab9a2fe6a8891b
Sha256: f033496382de7cac519e49362de86827027d671d66cb09973906b5756f36c917
                                        
                                            GET /shophome/img/logo.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 23937
Last-Modified: Mon, 18 Sep 2017 07:35:29 GMT
Etag: "59bf7741-5d81"
Expires: Thu, 14 Dec 2017 10:42:15 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23937
Md5:    565b9083bd4831ba1d6f329ab9035d54
Sha1:   786b3121b5f735ecce181c6d0f675124b7c7a06a
Sha256: 556ecee89cb129017a67fa7eb40532fcb58f56511e3f8e13c7b3170e44bf1229
                                        
                                            GET /img/ico1.png HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:16 GMT
Content-Length: 3380
Last-Modified: Wed, 25 Mar 2015 07:57:27 GMT
Etag: "55126a67-d34"
Expires: Thu, 14 Dec 2017 10:42:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   3380
Md5:    8b5f3051fb716a19d741225c921ba165
Sha1:   13958c4ba7c51ca44d06825fe94c72a759884ed3
Sha256: 9b8024272847fee03254f7120425a733253716d54a251f57c160d06ea195c703
                                        
                                            GET /img/ico2.png HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:16 GMT
Content-Length: 3108
Last-Modified: Wed, 25 Mar 2015 07:57:50 GMT
Etag: "55126a7e-c24"
Expires: Thu, 14 Dec 2017 10:42:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   3108
Md5:    296f3835d5c0cf6032e4c0ef327e9ab5
Sha1:   e110e33cb1123f3b85fe00c707a288a79680c03e
Sha256: 1468b38039b90aae3a191f09ca55a0841cf10e7b710a0a8ec33ab744b929f086
                                        
                                            GET /img/ico3.png HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:16 GMT
Content-Length: 2993
Last-Modified: Wed, 25 Mar 2015 07:58:21 GMT
Etag: "55126a9d-bb1"
Expires: Thu, 14 Dec 2017 10:42:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   2993
Md5:    5586cbaebd51561b58c7cdf92a1db110
Sha1:   362dfc80e0a84d43816a9ba453b69279494f451c
Sha256: b3aabeddeae95c21a50af628ed99c67cd2c0d8031819f9b7c039dd5e4ad19ce5
                                        
                                            GET /shophome/1/css/member.css HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:47:56 GMT
Content-Length: 24470
Last-Modified: Mon, 27 Mar 2017 08:51:37 GMT
Vary: Accept-Encoding
Etag: "58d8d299-5f96"
Expires: Mon, 18 Sep 2017 05:47:56 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 551
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 assembler program text, with CRLF line terminators
Size:   24470
Md5:    306dd6d3a572b2a256f36ec214ee5c29
Sha1:   6f5e901f288ac08849519dc44a73f7cd43181eb5
Sha256: 852d062e71a41d6f3a05b9627be650308a804168416aa3b0da1ac849725b013e
                                        
                                            GET /img/zx.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:16 GMT
Content-Length: 15492
Last-Modified: Wed, 25 Mar 2015 08:09:42 GMT
Etag: "55126d46-3c84"
Expires: Thu, 14 Dec 2017 10:42:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   15492
Md5:    39362e73c1384013dd0429b5eea01f66
Sha1:   305fd191ed35a4bf9fa61646b30487883ec53680
Sha256: fe108cee4b7acd77afad9980a007a074ed967eff005d009358bb5b22bf4d97a6
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:15 GMT
Content-Length: 95786
Last-Modified: Thu, 30 Oct 2014 13:59:18 GMT
Etag: "54524436-1762a"
Expires: Tue, 14 Nov 2017 11:42:15 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   95786
Md5:    8101d596b2b8fa35fe3a634ea342d7c3
Sha1:   d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
Sha256: 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
                                        
                                            GET /vqfwrimwftxywzf.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:07 GMT
Content-Length: 1071
Connection: keep-alive
Set-Cookie: __cfduid=dfa860eb6d7dfe27785aa4ae079e846921510656487; expires=Wed, 14-Nov-18 10:48:07 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 11:48:07 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd96587678443ad-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1071
Md5:    94f981b2bb97892acee8d9d6abca1dc0
Sha1:   400182d52e037f9b87b1b4ab713dc8201b9367bd
Sha256: c0ce9a82281a9a3e398ac2f02ff28660d914031a4cb1616c6e1b6164de0fcf38
                                        
                                            GET /js/left_link.js HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:14 GMT
Content-Length: 76
Last-Modified: Mon, 21 Mar 2016 09:47:57 GMT
Etag: "56efc34d-4c"
Expires: Tue, 14 Nov 2017 11:42:14 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 353
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 text, with no line terminators
Size:   76
Md5:    34e01be067dc21e9c15c91dbca70fe48
Sha1:   cd114c7e7da66668284d735b3ee8cd7c8d97bed0
Sha256: 8f84b0764e001e56a2e76a924d67645348e4b010de9cec377ab78d32891cd125
                                        
                                            GET /niraahjhqlprx.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:07 GMT
Content-Length: 1073
Connection: keep-alive
Set-Cookie: __cfduid=d6b633d437e268b87c521f74a393a15a31510656487; expires=Wed, 14-Nov-18 10:48:07 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 11:48:07 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd9658911c74370-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1073
Md5:    3e0247910fa7b09e62779022011e6c73
Sha1:   652e18efe7e41a9f6c8ecf419d172a1669ccc35e
Sha256: 02b1a1e45e4b2cad02b4855aca70ffefe9ad49f57e6e9e1ef467739509af8728
                                        
                                            GET /bwlcxoscxzdec.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:07 GMT
Content-Length: 1070
Connection: keep-alive
Set-Cookie: __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487; expires=Wed, 14-Nov-18 10:48:07 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 11:48:07 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd96589207f4388-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1070
Md5:    2cc03104b9de6cb8cdf30e35d80a0166
Sha1:   053a9357c242e7c050ae7511a04e04ddd9ec376a
Sha256: bd7095f267afc6e82c013c56e1a9e39c7520d9dbb185d857a20608d5b308bce7
                                        
                                            GET /shophome/js/search.js HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /bwltvofvczdec.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:07 GMT
Content-Length: 1068
Connection: keep-alive
Set-Cookie: __cfduid=d2510dc2cac1f0e95d3f13d0b5953d56d1510656487; expires=Wed, 14-Nov-18 10:48:07 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 11:48:07 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd96589249743dd-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1068
Md5:    6b6acb0d4ad665394269b148e25920bb
Sha1:   05f40f824f30cd467296288983de873b5c11c63f
Sha256: 7296319b58119f6891111da9ec130225e5267a978c6e678a7e22cf6130387eb7
                                        
                                            GET /mhwqegpwpkon.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:07 GMT
Content-Length: 1069
Connection: keep-alive
Set-Cookie: __cfduid=d840556432f4ced7511a7b12cfa5060fe1510656487; expires=Wed, 14-Nov-18 10:48:07 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 11:48:07 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd96589200d43e9-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1069
Md5:    1df78b004265b40e6ac79c9c07aae2d1
Sha1:   c26e64f26edeb4c21f40e11796368da3fc731a72
Sha256: 20c0fdce0f33b307e99ac70c80f010d5f6677c79c9cbaea36ea5674c7aa6045d
                                        
                                            GET /js/t.js HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:14 GMT
Content-Length: 249
Last-Modified: Mon, 21 Mar 2016 09:47:57 GMT
Etag: "56efc34d-f9"
Expires: Tue, 14 Nov 2017 11:42:14 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 353
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   249
Md5:    2107f7323cae651c3dd823b547f860d2
Sha1:   a29ffdce89e07353725800114d529c348c7ad43d
Sha256: cc3bfd8c0d99d1dd3d46433ff83428aa25a58f5a15afa44526cfb0d3403c83db
                                        
                                            GET /js/v1.js HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 7505
Last-Modified: Tue, 21 Oct 2014 02:09:27 GMT
Etag: "5445c057-1d51"
Expires: Tue, 14 Nov 2017 11:42:17 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  UTF-8 Unicode C program text
Size:   7505
Md5:    c6ee03fd0895b623374ef9308f06ab98
Sha1:   2d14b1805a1bb01ac2bba49e81b08bbeee286a72
Sha256: 35709778b2cf89108a3c6e10fcc83e2b3dab578314bb1847772ad27948e10af1
                                        
                                            GET /hlfjifjlzlizyzdfjzb.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:08 GMT
Content-Length: 7587
Connection: keep-alive
Cache-Control: public, max-age=7200
Content-Encoding: gzip
Expires: Tue, 14 Nov 2017 12:48:08 GMT
Last-Modified: Mon, 13 Nov 2017 04:01:59 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3bd9658ae10743ad-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7587
Md5:    e915b2618c3f1a3ca179fe7a917d67d3
Sha1:   656b160bb9c2c3ceb642cdd9b9e8a9107940eb19
Sha256: 8730da3d348cf71da93138a0b5356648968fb1dc4781691775101104b73adccb
                                        
                                            GET /shophome/1/img/sch_d.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 2823
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-b07"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 354
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 9 x 5, 8-bit/color RGBA, non-interlaced
Size:   2823
Md5:    bb2505b3dff84f95bb189d46d7f70937
Sha1:   f2ba72165076f2152c74ae115b09af5cfed4359f
Sha256: fda03e21c2d5a8fb3f141daa2c3e69e7a6cd2354b96ee4fcfcb839f7d3df214b
                                        
                                            GET /njkaitian/2328192010516213709.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70; __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /shophome/img/b_logo.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 14655
Last-Modified: Mon, 18 Sep 2017 07:23:31 GMT
Accept-Ranges: bytes
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:14 GMT
Etag: "59bf7473-393f"
Expires: Thu, 14 Dec 2017 10:42:14 GMT
Cache-Control: max-age=2592000
Age: 353
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   14655
Md5:    73d1758f1d9f396031fc6d6e7022d343
Sha1:   c4a4ffd74ebe80ff2168aaa3bba27137255912fd
Sha256: e3018b787bd7e9fa38eb2fe6f879193277044dfb4cb573426cca126fc304d70d
                                        
                                            GET /picture/nopicture.gif HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.8.1
Date: Tue, 07 Nov 2017 12:16:05 GMT
Content-Length: 307
Last-Modified: Mon, 23 Dec 2013 02:54:42 GMT
Accept-Ranges: bytes
Etag: "8a1e12548affce1:0"
X-Powered-By: WAF/2.0
Age: 354
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 100 x 100
Size:   307
Md5:    31b5a85ed0464cf8a9a675213a6acd07
Sha1:   c9dec2d85f302eb98c2104b6d03f0345102fccb4
Sha256: 629f15fbb1a3bbcbe18dc998f93e831224961b4750647a742f201762f1f3fffc
                                        
                                            GET /picture/2328192012325222956.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 1420
Last-Modified: Sun, 25 Mar 2012 14:29:50 GMT
Accept-Ranges: bytes
Etag: "3c3d62bc93acd1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1420
Md5:    35ff930ec0a176cb60892a6f58ccfb39
Sha1:   a5d4c1a3fe94a93ee0e3f982ece788eaad81a6ee
Sha256: 04c7cd868e61891ea75e8dd04aff820299155c0b03f442027b4ec5b87a658514
                                        
                                            GET /shophome/1/img/+.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d2510dc2cac1f0e95d3f13d0b5953d56d1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:37:45 GMT
Content-Length: 10873
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-2a79"
Expires: Wed, 18 Oct 2017 04:37:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 552
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   10873
Md5:    1901087914184e4ed2fe918e2b426572
Sha1:   bb5050c540ccdab9defc5b69760c1b7426d195f2
Sha256: dc1df00fef6833e7f0091611de2e2e19610aa74e284b1fc5411255095bffae5d
                                        
                                            GET /picture/PreviewImage/2328192010524161451.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 1480
Last-Modified: Mon, 24 May 2010 08:14:45 GMT
Accept-Ranges: bytes
Etag: "dc617e2b19fbca1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1480
Md5:    8f054e228c0b5e22b0ea5f246d286e87
Sha1:   3ac772c551d69b9928a9d325627ac526dd615170
Sha256: 6910658b52613f77fa240ddcf59d745a6530a7736752829ca6568c0e1017b740
                                        
                                            GET /picture/PreviewImage/2328192010524161125.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 1155
Last-Modified: Mon, 24 May 2010 08:11:19 GMT
Accept-Ranges: bytes
Etag: "d6ceddb018fbca1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1155
Md5:    2925ffa6d04fcf681d7846d4f5ad025a
Sha1:   f7c235e42c653c28769baa6830ffb3934a316599
Sha256: 3c64700351a40885d95457f8f82379e6dd8add950e4fdae45c5f44d0f5b706df
                                        
                                            GET /picture/PreviewImage/23281920101126112241.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 1379
Last-Modified: Fri, 26 Nov 2010 03:22:36 GMT
Accept-Ranges: bytes
Etag: "cc6ce22b198dcb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1379
Md5:    d61b713cf63a0f960b85d457496f4a6a
Sha1:   dc52172c5cb94e2e51391ebfd81b324297706999
Sha256: 36cd4a3efebdcdd59ce4c9bb4ff46fd3d86f0160a50c594a1da0cd045df54e0c
                                        
                                            GET /picture/PreviewImage/2328192010524162058.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 1266
Last-Modified: Mon, 24 May 2010 08:20:52 GMT
Accept-Ranges: bytes
Etag: "9288261afbca1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1266
Md5:    45c1f5fd17d476ddcf56ae59f756bb14
Sha1:   03726fd11cd7ad40ea185f54d76b66505ae278d8
Sha256: 9eb202a54dbae485dfd2a681e2c8d6f214025e9942ff04137e12ef16b6f39441
                                        
                                            GET /17771164.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         14.17.102.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.12.2
Date: Tue, 14 Nov 2017 10:48:08 GMT
Content-Length: 6155
Last-Modified: Thu, 09 Nov 2017 02:18:11 GMT
Connection: keep-alive
Etag: "5a03bae3-180b"
Expires: Wed, 15 Nov 2017 10:48:08 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   6155
Md5:    e31a0724532128194ee2b75abf79d1de
Sha1:   884bd0ed77481bb0c9a3a223106192dd1ead2b46
Sha256: 175e7685836695fae00eb88873f9329c5baddb2a07ecf76476305470f871d456

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /shophome/1/img/-.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d2510dc2cac1f0e95d3f13d0b5953d56d1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:37:45 GMT
Content-Length: 10774
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-2a16"
Expires: Wed, 18 Oct 2017 04:37:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 552
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   10774
Md5:    dcd840d2066c905097878b07905c00f0
Sha1:   1c742417cc332741f2dc2a2c4860c1902a83dbbc
Sha256: 403ba51e52bae744dd9379ccbd8d7ef1c025cd21181f680033fb21f5bd309771
                                        
                                            GET /img/sc.jpg HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70; __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:17 GMT
Content-Length: 16107
Last-Modified: Wed, 25 Mar 2015 08:10:01 GMT
Etag: "55126d59-3eeb"
Expires: Thu, 14 Dec 2017 10:42:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   16107
Md5:    9755e4584901f44cedc0e6e7cd8f3050
Sha1:   f8a2875fc9e33def83c9ecdf61e15ed9fbe0bd94
Sha256: 7f8fe19a3320b83873ace750c599db8acb04b6e6682aa4e98e69554139f7ac6e
                                        
                                            GET /shophome/1/img/sch_btn.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 3324
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-cfc"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 354
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 38 x 25, 8-bit/color RGB, non-interlaced
Size:   3324
Md5:    0bfb1bf4447f840133d1ffd41ea49913
Sha1:   b5642c328fde6a6bea9c7241ba865ca521248735
Sha256: 3919b7863ddd81ef1a4f3f94009db693d9d22f14d4c783df1054eb70c7d1593a
                                        
                                            GET /shophome/1/img/tbgx.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d2510dc2cac1f0e95d3f13d0b5953d56d1510656487

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /picture/PreviewImage/2328192010721164622.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1408
Last-Modified: Wed, 21 Jul 2010 08:46:16 GMT
Accept-Ranges: bytes
Etag: "7034722eb128cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1408
Md5:    5e323d99881682cf38861c064fffd1e9
Sha1:   a16f6a486dafa04351413de6e034af249c34609a
Sha256: 3c040cdce3c6587690d975994b02cbade8fa3ea2c95cdcc3da0879396f29dd37
                                        
                                            GET /shophome/1/img/nav.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d4889149cefa02e8451db028ad33ca7fd1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 17048
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-4298"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 354
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   17048
Md5:    0f6cd3273d7eb116b1fc66a58d5f589f
Sha1:   cfcd6fdc1503c2724de9d57948c36a062bb4816c
Sha256: 3d385f765fed4ce64ac2fbd0508b3fc422dcad52fb872c1f0b5e007d955446cf
                                        
                                            GET /picture/PreviewImage/2328192010721164208.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1328
Last-Modified: Wed, 21 Jul 2010 08:42:02 GMT
Accept-Ranges: bytes
Etag: "32cd1897b028cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1328
Md5:    16408ba5fdfd4032c6793bafdf878dc0
Sha1:   5f45f978133ab36e2ab6a1fa2a81a5039b3cacca
Sha256: 1b03847a166680edc7c0223abce08675be50c97e4ce0e91087b7a7f42545e37d
                                        
                                            GET /picture/PreviewImage/2328192010721162909.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1564
Last-Modified: Wed, 21 Jul 2010 08:29:03 GMT
Accept-Ranges: bytes
Etag: "f0e9bac6ae28cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1564
Md5:    32bc7002a5dfec850409ef59d7c8db52
Sha1:   5eeac47f5e5725be6bdcb38f73b281a1027f55a2
Sha256: e7ddfcd13a7c7eb2fdce4fcf9606a8efdcdf4206b69bc232e5de43b2ec1278ea
                                        
                                            GET /picture/PreviewImage/2328192010721162808.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1265
Last-Modified: Wed, 21 Jul 2010 08:28:02 GMT
Accept-Ranges: bytes
Etag: "402072a2ae28cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1265
Md5:    3ecaa0c3f451decf59c2cfdb200e73b8
Sha1:   63ff24f31215294d7bc185cae77742ef99be96d7
Sha256: 1f4dec7450db81e3d2c2b4ff5b4592ce4665ce198ab8d2f51b6947565d3ad3bf
                                        
                                            GET /picture/PreviewImage/2328192010721153715.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1518
Last-Modified: Wed, 21 Jul 2010 07:37:09 GMT
Accept-Ranges: bytes
Etag: "4cd2fe86a728cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1518
Md5:    3a674c415777a9f8f80187360f2cd04e
Sha1:   ff95f97961812e5671830ddc41b7bbbbed229307
Sha256: a1bf263f92c18308cd71c0de73875c5f19709fb653409c4766af5f23c0fa0f88
                                        
                                            GET /picture/PreviewImage/2328192010721153559.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1461
Last-Modified: Wed, 21 Jul 2010 07:35:53 GMT
Accept-Ranges: bytes
Etag: "5e8c3859a728cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1461
Md5:    debd2834aac7e8614e9d0b8e262f8d21
Sha1:   f5d9738b0500bd48f9fc30699f98834584f388a0
Sha256: 3501fad5c515bcca427fe3f87f539290bf726a131761f352392a44f05af82dbe
                                        
                                            GET /picture/PreviewImage/2328192010721153438.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1471
Last-Modified: Wed, 21 Jul 2010 07:34:32 GMT
Accept-Ranges: bytes
Etag: "3850f328a728cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1471
Md5:    b74d856b47ea32515012fae866ebeaf1
Sha1:   2bb4b4cd6c9256fe860b0d9083974e97acb69732
Sha256: e3274d476f5533071810e9507654deff44244af702e17adc82a68632d905f8f9
                                        
                                            GET /picture/PreviewImage/2328192010721152536.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1353
Last-Modified: Wed, 21 Jul 2010 07:25:30 GMT
Accept-Ranges: bytes
Etag: "106f27e6a528cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1353
Md5:    52234ecb773cbcb512eef18965270ab8
Sha1:   e9550589233a34cfb8a2f4b5c5475dc582f62ebc
Sha256: 953aee3118845787cae54eefde52204f2b5381dce93e3380245876a8ab643d5b
                                        
                                            GET /picture/PreviewImage/2328192010721153236.summ.jpg HTTP/1.1 
Host: pic.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:18 GMT
Content-Length: 1593
Last-Modified: Wed, 21 Jul 2010 07:32:30 GMT
Accept-Ranges: bytes
Etag: "321f64e0a628cb1:0"
X-Powered-By: WAF/2.0
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1593
Md5:    8524a3bf79756534e286b7070c21bd91
Sha1:   055db21b688fc8fd49bad8237d20e74d1b0ea8a6
Sha256: 06fcf77df2ed7bc626d6804a01cc57ff65ec6f316750f709bb6260cdd709ec53
                                        
                                            GET /shophome/1/img/warn.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d840556432f4ced7511a7b12cfa5060fe1510656487

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 13 Nov 2017 12:11:56 GMT
Content-Length: 3812
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-ee4"
Expires: Wed, 13 Dec 2017 12:11:56 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 351
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGB, non-interlaced
Size:   3812
Md5:    0e4dbafd29c9bd6d1d8c7b61f9531452
Sha1:   8705bb3dc5bb6383059f0a06915421754df7aef8
Sha256: 4cd2ba232a5eba24ba8dbaaf82a03d35168b7d38c213ef24c3adcb40360f9c49
                                        
                                            GET /cpro/ui/pr.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Tue, 14 Nov 2017 10:48:10 GMT
Content-Length: 59
Connection: close
Etag: "5a052a16-3b"
Last-Modified: Fri, 10 Nov 2017 04:24:54 GMT
Expires: Tue, 14 Nov 2017 11:06:02 GMT
Age: 2528
Cache-Control: max-age=3600
Accept-Ranges: bytes
Content-Encoding: gzip
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  gzip compressed data, was "pr.js", from Unix, last modified: Wed Apr 12 14:16:46 2017
Size:   59
Md5:    41fb278f99022505e4a8b3021865239b
Sha1:   56902c330e58d6b2028e1c01bdbe655e07737acd
Sha256: c447397f21354227ae353012e7ad20f590f17486ccf0ae58259bc5dbf6373243
                                        
                                            GET /s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 2019
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D70B97B4549BF5445F:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2019
Md5:    f32a15c900bdac689123fc18a01b9f16
Sha1:   7f24e6b02a315277a94c2cd2db05ff46fd7a8240
Sha256: 71f9fb5e76c117cbef88dbe902a6b361be7f89be89105af94d8004e47e1b654b
                                        
                                            GET /s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&par=1176x855&pss=1159x2618&tlm=1510656485&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cfv=10&cpl=10&chi=1&col=en-US&cmi=92&dai=4&dc=2&cce=true&tpr=1510656489312&dri=0&cec=x-gbk&psr=1176x885&pcs=1159x754&dtm=HTML_POST&pis=-1x-1&exps=111000&cdo=-1&ccd=24&ant=0&ari=2&ps=618x329&dis=0&cja=true&tcn=1510656489&drs=1 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 8478
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D7F57980A1FD381E90:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8478
Md5:    4a0f9392489e2e75ff684ea1e99b5d9c
Sha1:   8a0d3069709b4a55cfb7229e2f6a4d618f7079f4
Sha256: d13fb0e8726b738ac50d10f1be69731ad9faafafac8c963f08c82aaf0a8bb963
                                        
                                            GET /s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cpl=10&pis=-1x-1&tcn=1510656489&tpr=1510656489312&cmi=92&chi=1&dri=0&drs=1&cec=x-gbk&cce=true&ant=0&ari=2&pcs=1159x754&dc=2&pss=1159x1868&cfv=10&par=1176x855&cdo=-1&exps=111000&cja=true&dis=0&col=en-US&dtm=HTML_POST&dai=1&psr=1176x885&tlm=1510656485&ccd=24&ps=183x89&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 8688
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D7A111FFAEDC3FE5A4:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8688
Md5:    1a00d49917de1e17524eee55fbf53b7a
Sha1:   490a9bb08bad7a6f4f1f43921571679b41f26f80
Sha256: 7dfa693f85f7d9d2563166e8f559670f2982a1560895e454fe28a5fa7f688aa1
                                        
                                            GET /s?hei=100&wid=980&di=u2156929&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&dc=2&pis=-1x-1&tlm=1510656485&cmi=92&ccd=24&ps=2627x89&par=1176x855&cfv=10&cce=true&psr=1176x885&chi=1&cec=x-gbk&dai=6&pss=1159x2985&cpl=10&cdo=-1&pcs=1159x754&dis=0&drs=1&tpr=1510656489312&dtm=HTML_POST&tcn=1510656490&ant=0&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cja=true&ari=2&exps=111000&dri=0&col=en-US HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 8722
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D7D60AAE6395586D55:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8722
Md5:    4a700279eae83f49c8365cf32704f997
Sha1:   a3c394ae6d49b3c8577dcd922abe1d6c03d858b6
Sha256: 3a041121075559981642e11d551de25fdbbfa3e465dd2c12ed53432c61458e10
                                        
                                            GET /s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cja=true&ps=1233x99&col=en-US&cdo=-1&psr=1176x885&dc=2&chi=1&drs=1&pss=1159x1868&ant=0&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&dis=0&exps=111000&ccd=24&cmi=92&dri=0&par=1176x855&pcs=1159x754&tcn=1510656489&tpr=1510656489312&pis=-1x-1&cec=x-gbk&cfv=10&dtm=HTML_POST&cpl=10&cce=true&dai=2&tlm=1510656485&ari=2 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 10122
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D784CBE53DA7BB86AD:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10122
Md5:    feb049f47a47186f6e59c0823aec36d6
Sha1:   061b652c19de4c875ce5177df81aabfb288302cb
Sha256: e9e29e081558cd503ab9672970aeb037a60bcc31d4d197d040ead97ae0c41454
                                        
                                            GET /s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ant=0&cce=true&cja=true&ps=1428x329&cec=x-gbk&drs=1&pis=-1x-1&pcs=1159x754&dri=1&tcn=1510656489&psr=1176x885&pss=1159x2618&dtm=HTML_POST&tlm=1510656485&dis=0&cdo=-1&ari=2&dc=2&cmi=92&cpl=10&cfv=10&chi=1&exps=111000&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&ccd=24&dai=5&tpr=1510656489312&col=en-US&par=1176x855 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 7223
Date: Tue, 14 Nov 2017 10:48:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue Nov 14 18:48:10 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=4CC77FB83206D8D79213C37FE572CC49:FG=1; expires=Wed, 14-Nov-48 10:48:10 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7223
Md5:    9e0ddfe18e1c0fc45592ac113215c41b
Sha1:   d6fee35402fb0bbb5d32692c0b4e9a440dc3da73
Sha256: 7a89587e53e205cec0e95e2f03fe7692575a1929bdeffd42fc705010b99f0779
                                        
                                            GET /h.js?3a2bf59295995a637abc01fb61aeeb3d HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9034
Date: Tue, 14 Nov 2017 10:48:10 GMT
Etag: 0a214b15e46d074818d45ad60b5f31f2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=260F4DBE2632A589; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9034
Md5:    71f5a4eee9c5371d734ca1b64a989cdd
Sha1:   1ce6e756377d9f0bc0bf8e5165bb71ab0b67bce4
Sha256: 87b342aa7a979798db23812620c90a3f72a8332e02fc2daa204572f121ae9ada
                                        
                                            GET /go.asp?svid=11&id=17771164&tpages=1&ttimes=1&tzone=1&tcolor=24&sSize=1176,885&referrer=&vpage=http%3A//njkaitian.sooshong.com/&vvtime=1510656489442 HTTP/1.1 
Host: web.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         42.236.74.242
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: private
Expires: Mon, 13 Nov 2017 18:08:36 GMT
Server: Microsoft-IIS/8.5
Date: Tue, 14 Nov 2017 10:48:35 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /pics/201706/20/2017620111722536.jpg HTTP/1.1 
Host: img1.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         120.31.134.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 32023
Last-Modified: Tue, 20 Jun 2017 03:17:23 GMT
Accept-Ranges: bytes
Etag: "6a6f33bc73e9d21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Tue, 14 Nov 2017 10:48:06 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   32023
Md5:    79da9eb439530591e178abbd22b8ceaf
Sha1:   03ea77f92e0d89081aa4ea4300629552a694dc60
Sha256: a003b877b3a5dfe810db8196aaea7a624461962ff22328461ab0e81136d12cc8
                                        
                                            GET /cpro/ui/noexpire/img/4.0.0/pc_ads_bear.1x.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&par=1176x855&pss=1159x2618&tlm=1510656485&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cfv=10&cpl=10&chi=1&col=en-US&cmi=92&dai=4&dc=2&cce=true&tpr=1510656489312&dri=0&cec=x-gbk&psr=1176x885&pcs=1159x754&dtm=HTML_POST&pis=-1x-1&exps=111000&cdo=-1&ccd=24&ant=0&ari=2&ps=618x329&dis=0&cja=true&tcn=1510656489&drs=1

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Tue, 14 Nov 2017 10:48:10 GMT
Content-Length: 956
Connection: close
Etag: "585cd998-3bc"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 28062005
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   956
Md5:    2d1a3e3ace2672c6a2183402ba078b07
Sha1:   c1deb61830a69504b09110b27b1075e6bbd9dac9
Sha256: 8c83c0e9686a8d60124a8cbf7697d5c0dffcafeafffea471bf85e79b242cf85f
                                        
                                            GET /adx.php?c=d25pZD04MTNkY2ZiZDlmNmVkOGQxAHM9ODEzZGNmYmQ5ZjZlZDhkMQB0PTE1MTA2NTY0OTAAc2U9MQBidT02NDU1NzY2AHByaWNlPVdncko2Z0FHeVFwN2pFcGdXNUlBOGx4VnlGaDVsc1pyUU9SaUhRAGNoYXJnZV9wcmljZT0xAHNoYXJpbmdfcHJpY2U9MTAwMAB3aW5fZHNwPTY0NTU3NjYAY2htZD0xAGJkaWQ9AGNwcm9pZD0Ad2Q9ODMxNTY2ODEAcG9zPTAAYmNobWQ9MAB2PTEAaT1hMjNlOWFlNw HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US
Cookie: BAIDUID=4CC77FB83206D8D70B97B4549BF5445F:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1521740176&si=3a2bf59295995a637abc01fb61aeeb3d&v=1.2.27&lv=1&ct=!!&tt=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B%E9%98%80%2CFRISHER%E5%87%8F%E5%8E%8B%E9%98%80%2C%E7%94%B5%E7%83%AD%E6%B0%B4%E6%B5%B4%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%94%B5%E7%83%AD%E6%B0%B4%E6%B5%B4%E5%BC%8F%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B6%B2%E5%8C%96%E6%B0%94%E6%B0%94%E5%8C%96%E7%82%89&sn=9206 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/
Cookie: BAIDUID=4CC77FB83206D8D79213C37FE572CC49:FG=1; HMACCOUNT=260F4DBE2632A589

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Tue, 14 Nov 2017 10:48:11 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /adx.php?c=d25pZD1hYmZhNWU2NTc5N2NhNGVlAHM9YWJmYTVlNjU3OTdjYTRlZQB0PTE1MTA2NTY0OTAAc2U9MQBidT00AHByaWNlPVdncko2Z0FIRS1aN2pFcGdXNUlBOGhBWGVtcDM0N2JrYTkxRXdnAGNoYXJnZV9wcmljZT0yMjAAc2hhcmluZ19wcmljZT0yMjAwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT05MjM1OTQyMg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&par=1176x855&pss=1159x2618&tlm=1510656485&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cfv=10&cpl=10&chi=1&col=en-US&cmi=92&dai=4&dc=2&cce=true&tpr=1510656489312&dri=0&cec=x-gbk&psr=1176x885&pcs=1159x754&dtm=HTML_POST&pis=-1x-1&exps=111000&cdo=-1&ccd=24&ant=0&ari=2&ps=618x329&dis=0&cja=true&tcn=1510656489&drs=1
Cookie: BAIDUID=4CC77FB83206D8D7F57980A1FD381E90:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD02NmM2ODA0OTEwMzdmZGJmAHM9NjZjNjgwNDkxMDM3ZmRiZgB0PTE1MTA2NTY0OTAAc2U9MQBidT00AHByaWNlPVdncko2Z0FIS3RGN2pFcGdXNUlBOHRjWmVsU0lTcTdndU1QU2V3AGNoYXJnZV9wcmljZT0yNDkAc2hhcmluZ19wcmljZT0yNDkwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT05MGI4MTJmYg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cpl=10&pis=-1x-1&tcn=1510656489&tpr=1510656489312&cmi=92&chi=1&dri=0&drs=1&cec=x-gbk&cce=true&ant=0&ari=2&pcs=1159x754&dc=2&pss=1159x1868&cfv=10&par=1176x855&cdo=-1&exps=111000&cja=true&dis=0&col=en-US&dtm=HTML_POST&dai=1&psr=1176x885&tlm=1510656485&ccd=24&ps=183x89&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B
Cookie: BAIDUID=4CC77FB83206D8D7A111FFAEDC3FE5A4:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD02MWI1OWZhYjI0MTc0MmU1AHM9NjFiNTlmYWIyNDE3NDJlNQB0PTE1MTA2NTY0OTAAc2U9MQBidT00AHByaWNlPVdncko2Z0FIU1FGN2pFcGdXNUlBOGdTVGFpUGxPX2JZQ0dUQVFRAGNoYXJnZV9wcmljZT0xMjEAc2hhcmluZ19wcmljZT0xMjEwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT0xNGViYTQ4Mw HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2156929&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&dc=2&pis=-1x-1&tlm=1510656485&cmi=92&ccd=24&ps=2627x89&par=1176x855&cfv=10&cce=true&psr=1176x885&chi=1&cec=x-gbk&dai=6&pss=1159x2985&cpl=10&cdo=-1&pcs=1159x754&dis=0&drs=1&tpr=1510656489312&dtm=HTML_POST&tcn=1510656490&ant=0&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cja=true&ari=2&exps=111000&dri=0&col=en-US
Cookie: BAIDUID=4CC77FB83206D8D7D60AAE6395586D55:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD0wYTQ0YWE0NTMzM2Y3MDk0AHM9MGE0NGFhNDUzMzNmNzA5NAB0PTE1MTA2NTY0OTAAc2U9MQBidT00AHByaWNlPVdncko2Z0FIZUxSN2pFcGdXNUlBOHZXOE1MT1BfS3VXemFPV2pnAGNoYXJnZV9wcmljZT0yMTcAc2hhcmluZ19wcmljZT0yMTcwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT1hMWQ0MWI0Mg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ant=0&cce=true&cja=true&ps=1428x329&cec=x-gbk&drs=1&pis=-1x-1&pcs=1159x754&dri=1&tcn=1510656489&psr=1176x885&pss=1159x2618&dtm=HTML_POST&tlm=1510656485&dis=0&cdo=-1&ari=2&dc=2&cmi=92&cpl=10&cfv=10&chi=1&exps=111000&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&ccd=24&dai=5&tpr=1510656489312&col=en-US&par=1176x855
Cookie: BAIDUID=4CC77FB83206D8D79213C37FE572CC49:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD00YzcwMjJkMTg4M2EyOTMwAHM9NGM3MDIyZDE4ODNhMjkzMAB0PTE1MTA2NTY0OTAAc2U9MQBidT00AHByaWNlPVdncko2Z0FIZTgxN2pFcGdXNUlBOHZLejFESWJsaks0Tzl5Zm5nAGNoYXJnZV9wcmljZT03MzYAc2hhcmluZ19wcmljZT03MzYwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT0wMTFjMWJiOA HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cja=true&ps=1233x99&col=en-US&cdo=-1&psr=1176x885&dc=2&chi=1&drs=1&pss=1159x1868&ant=0&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&dis=0&exps=111000&ccd=24&cmi=92&dri=0&par=1176x855&pcs=1159x754&tcn=1510656489&tpr=1510656489312&pis=-1x-1&cec=x-gbk&cfv=10&dtm=HTML_POST&cpl=10&cce=true&dai=2&tlm=1510656485&ari=2
Cookie: BAIDUID=4CC77FB83206D8D784CBE53DA7BB86AD:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /pixel?dspid=6455766&ext_data= HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US
Cookie: BAIDUID=4CC77FB83206D8D70B97B4549BF5445F:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Connection: keep-alive
Content-Length: 0
Date: Tue, 14 Nov 2017 10:48:11 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Location: https://ckmap.mediav.com/m?tid=5PURL&baidu_error=2&timestamp=1510656491
Server: nginx


--- Additional Info ---
                                        
                                            GET /compile/pm/mvp_p1.js HTTP/1.1 
Host: material.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US

                                         
                                         121.205.7.237
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 08 Nov 2017 04:11:18 GMT
Vary: Accept-Encoding
Expires: Wed, 29 Nov 2017 10:48:11 GMT
Cache-Control: max-age=1296000
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip
X-QHCDN: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9407
Md5:    3b012dfdd674cbdef29bc62f5fea5672
Sha1:   6b12012c468d2454a95608f799d1ee7c315f0ccf
Sha256: 794f664b342ae161e895bd7eaaaa586787b883caf5eb2bd5bef3b815fd02a18b
                                        
                                            GET /cm.gif?dspid=11143 HTTP/1.1 
Host: cm.miaozhen.atm.youku.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&par=1176x855&pss=1159x2618&tlm=1510656485&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cfv=10&cpl=10&chi=1&col=en-US&cmi=92&dai=4&dc=2&cce=true&tpr=1510656489312&dri=0&cec=x-gbk&psr=1176x885&pcs=1159x754&dtm=HTML_POST&pis=-1x-1&exps=111000&cdo=-1&ccd=24&ant=0&ari=2&ps=618x329&dis=0&cja=true&tcn=1510656489&drs=1

                                         
                                         205.204.101.47
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Date: Tue, 14 Nov 2017 10:48:11 GMT
Content-Length: 154
Connection: keep-alive
Set-Cookie: __ysuid=1510656491703VIF; path=/; domain=.youku.com; expires=Mon, 11-Aug-2042 05:28:12 GMT
Cache-Control: no-cache
Pragma: no-cache
P3p: CP='CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
Location: http://cm.pos.baidu.com/youku?mzid=1510656491703VIF
Expires: Tue, 14 Nov 2017 10:48:10 GMT
Server: Tengine/Aserver
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text
Size:   154
Md5:    cfbeaf604823f038b8b46f0ac862b98c
Sha1:   7b9eb1dac48e74fa5f418bc456cb410f88b81d98
Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
                                        
                                            GET /cpro/ui/noexpire/js/4.0.0/adClosefeedbackUpgrade.min.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cpl=10&pis=-1x-1&tcn=1510656489&tpr=1510656489312&cmi=92&chi=1&dri=0&drs=1&cec=x-gbk&cce=true&ant=0&ari=2&pcs=1159x754&dc=2&pss=1159x1868&cfv=10&par=1176x855&cdo=-1&exps=111000&cja=true&dis=0&col=en-US&dtm=HTML_POST&dai=1&psr=1176x885&tlm=1510656485&ccd=24&ps=183x89&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Tue, 14 Nov 2017 10:48:11 GMT
Transfer-Encoding: chunked
Connection: close
Etag: W/"585cd998-7c0f"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:04 GMT
Age: 28062007
Cache-Control: max-age=315360000
Ohc-Response-Time: 1 0 0 0 0 0
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8928
Md5:    0d006394985aef7c1843c20b4fd4d719
Sha1:   e57ec22ec5ef186e414ddb8d0049014c5887dd2f
Sha256: 82e02ec328ce46cd9c2a1ef4850535102365a4860eb7d5c3c68b37aa810a2965
                                        
                                            GET /youku?mzid=1510656491703VIF HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&par=1176x855&pss=1159x2618&tlm=1510656485&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&cfv=10&cpl=10&chi=1&col=en-US&cmi=92&dai=4&dc=2&cce=true&tpr=1510656489312&dri=0&cec=x-gbk&psr=1176x885&pcs=1159x754&dtm=HTML_POST&pis=-1x-1&exps=111000&cdo=-1&ccd=24&ant=0&ari=2&ps=618x329&dis=0&cja=true&tcn=1510656489&drs=1
Cookie: BAIDUID=4CC77FB83206D8D79213C37FE572CC49:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 43
Date: Tue, 14 Nov 2017 10:48:12 GMT
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /cpro/exp/closead/img/bd_logo.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cpl=10&pis=-1x-1&tcn=1510656489&tpr=1510656489312&cmi=92&chi=1&dri=0&drs=1&cec=x-gbk&cce=true&ant=0&ari=2&pcs=1159x754&dc=2&pss=1159x1868&cfv=10&par=1176x855&cdo=-1&exps=111000&cja=true&dis=0&col=en-US&dtm=HTML_POST&dai=1&psr=1176x885&tlm=1510656485&ccd=24&ps=183x89&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Tue, 14 Nov 2017 10:48:12 GMT
Content-Length: 2781
Connection: close
Etag: "5a052a16-add"
Last-Modified: Fri, 10 Nov 2017 04:24:54 GMT
Expires: Tue, 14 Nov 2017 15:55:33 GMT
Age: 67959
Cache-Control: max-age=86400
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 59 x 19, 8-bit/color RGBA, non-interlaced
Size:   2781
Md5:    83a417759a4b7c28d9ea937b30d4b4d2
Sha1:   0dd9f86f689a5b8ee9f2f6894379628bfd6a72b1
Sha256: 7b398494507aa0e9e6046520b8ee83046d6646b93c129a46633a9117bf7118a2
                                        
                                            GET /cpro/ui/noexpire/img/4.0.0/pc_ads.1x.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&cpl=10&pis=-1x-1&tcn=1510656489&tpr=1510656489312&cmi=92&chi=1&dri=0&drs=1&cec=x-gbk&cce=true&ant=0&ari=2&pcs=1159x754&dc=2&pss=1159x1868&cfv=10&par=1176x855&cdo=-1&exps=111000&cja=true&dis=0&col=en-US&dtm=HTML_POST&dai=1&psr=1176x885&tlm=1510656485&ccd=24&ps=183x89&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Tue, 14 Nov 2017 10:48:12 GMT
Content-Length: 611
Connection: close
Etag: "585cd998-263"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 28062007
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 30 x 16, 8-bit/color RGBA, non-interlaced
Size:   611
Md5:    09ad5377f14a7fe42cfe2859acf7819a
Sha1:   d1ac93121923b100a04535f2a2ee3551b0962be7
Sha256: 9be3b35721fafc7ede5b0040b63379bd50c1601227042841f798723a0f77b4b4
                                        
                                            GET /js/adicon.js HTTP/1.1 
Host: static.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US

                                         
                                         58.221.63.2
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 02 Aug 2017 02:53:33 GMT
Vary: Accept-Encoding
Expires: Tue, 14 Nov 2017 15:48:12 GMT
Cache-Control: max-age=18000
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip
X-QHCDN: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   733
Md5:    6bee38264ddcfdf60448eae91e9ce763
Sha1:   17fdb6957005bbca287807f08a94597f60562469
Sha256: 2cb40104160335a2e07a00a37bbe5f28212d1845bd6f90fb1d48d38cb7614259
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 14 Nov 2017 10:48:12 GMT
Server: Apache
Last-Modified: Mon, 13 Nov 2017 05:55:01 GMT
Expires: Mon, 20 Nov 2017 05:55:01 GMT
Etag: 6FDB6EDCEC673C155780C281032DA39CB3F51D8E
Cache-Control: max-age=500208,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp14
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    5883f5af7f81f57d24d474a753837c7a
Sha1:   6fdb6edcec673c155780c281032da39cb3f51d8e
Sha256: 01c8d0747ec021d33f1527b681696c17a8d1bebac3cebe8dcb8728315ad49cf3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 14 Nov 2017 10:48:12 GMT
Server: Apache
Last-Modified: Mon, 13 Nov 2017 11:43:12 GMT
Expires: Mon, 20 Nov 2017 11:43:12 GMT
Etag: 32BC951852D7256206D74A6D030AC8FFBEB4C5BB
Cache-Control: max-age=521099,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp28
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    51268284978909484a0ecf0ea26661cf
Sha1:   32bc951852d7256206d74a6d030ac8ffbeb4c5bb
Sha256: 387caf937b82fb8ae47bf41c4ee6b7366a4429422ca3f04f8686cba73d2730c2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 14 Nov 2017 10:48:12 GMT
Server: Apache
Last-Modified: Mon, 13 Nov 2017 11:43:12 GMT
Expires: Mon, 20 Nov 2017 11:43:12 GMT
Etag: 6F15D70331A2933F6ECD99291D030B2E4ADCB2D8
Cache-Control: max-age=521099,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp28
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f72d96d14294cadcc7fdedfb5c81044e
Sha1:   6f15d70331a2933f6ecd99291d030b2e4adcb2d8
Sha256: 3dc2787bf96a195e82489b3a58b9bb523d69de45de845dfb3f80cc5b28f0d03b
                                        
                                            GET /s?type=1&r=5&tid=&finfo=DAABCAABAAAABQgAAgAAABgEAAM/Bwcgi43bmgAIAAIAAAADCgADMNEOLT+ZcMQIAAQAAABvBgAGFwYIAAgAANbYCgAJAAAAAAEQAAIGAAoAAAA&mv_ref=njkaitian%2Esooshong%2Ecom&enup=CAABTSiBewgAAnuBKE0A&bid=mAETvKeoIPG=&ugi=bBXUCBUAFQAVAAAV7LKBggwlyAEA&uai=NQIVAjgTOTIyMzM3MjAzMjU2MTE0NTI4MRXy1o62BRQQAA&ubi=FZqVHBWy7OQBFaiD3xIVkvumTxUGFRQWsMeC9hMWxrqj9KSLh9FhRoSAgBElBhXEgNzpCSUAAA&price=WgrJ6gAGyQp7jEpgW5IA8lxVyFh5lsZrQORiHQ HTTP/1.1 
Host: ssxd.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US

                                         
                                         112.65.70.30
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 14 Nov 2017 10:48:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: v=u0q>2]JN4r9r^n8unnws;expires=Wednesday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.mediav.com
Pragma: no-cache
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Cache-Control: no-cache, must-revalidate
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   56
Md5:    eebed1f68d26000e93aa24144f7d4d73
Sha1:   dc18ab1cb2d1097d8a57126caffb4f7d293cbe5c
Sha256: 68ea8e4d82da8a934a44fbc1554ebcb23bcb3cb489a8e7ec9cbcb322c998d269
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 14 Nov 2017 10:48:13 GMT
Server: Apache
Last-Modified: Sun, 12 Nov 2017 20:08:52 GMT
Expires: Sun, 19 Nov 2017 20:08:52 GMT
Etag: B7AFA2352CDECCEA08B388772473B7C8666E5B6C
Cache-Control: max-age=465038,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp14
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cbc585f08a371664bb4b18902b9346df
Sha1:   b7afa2352cdeccea08b388772473b7c8666e5b6c
Sha256: fc03dc3e01f6104a514d6dc24a926419bac382ea72ad8652f5bed6af4be3cb11
                                        
                                            GET /m?tid=5PURL&baidu_error=2&timestamp=1510656491 HTTP/1.1 
Host: ckmap.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US

                                         
                                         112.65.70.28
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 14 Nov 2017 10:48:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: v=uAu?j_ptbn9r^n811hmd; expires=Wednesday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.mediav.com
Pragma: no-cache
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   56
Md5:    eebed1f68d26000e93aa24144f7d4d73
Sha1:   dc18ab1cb2d1097d8a57126caffb4f7d293cbe5c
Sha256: 68ea8e4d82da8a934a44fbc1554ebcb23bcb3cb489a8e7ec9cbcb322c998d269
                                        
                                            GET /go1?id=17771164&rt=1510656489445&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%258D%2597%25E4%25BA%25AC%25E5%2587%25AF%25E5%25A4%25A9%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%2520%25E4%25B8%25BB%25E8%2590%25A5%2520%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%252C%25E7%2587%2583%25E6%25B0%2594%25E8%25B0%2583%25E5%258E%258B%25E9%2598%2580%252C&ing=1&ekc=&sid=1510656489446&tt=%25E5%258D%2597%25E4%25BA%25AC%25E5%2587%25AF%25E5%25A4%25A9%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%257C%25E5%258D%2597%25E4%25BA%25AC%25E5%2587%25AF%25E5%25A4%25A9%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%25E4%25B8%25BB%25E8%2590%25A5%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%252C%25E7%2587%2583%25E6%25B0%2594%25E8%25B0%2583%25E5%258E%258B%25E9%2598%2580%252C%25E5%258A%259B%25E9%25AB%2598%25E8%25B0%2583%25E5%258E%258B%25E5%2599%25A8%252C%25E8%25B4%25B9%25E5%25B8%258C%25E5%25B0%2594%25E8%25B0%2583%25E5%258E%258B%25E5%2599%25A8%252CREGO%25E5%2587%258F%25E5%258E%258B%25E9%2598%2580%252CFRISHER%25E5%2587%258F%25E5%258E%258B%25E9%2598%2580%252C%25E7%2594%25B5%25E7%2583%25AD%25E6%25B0%25B4%25E6%25B5%25B4%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%252C%25E7%2594%25B5%25E7%2583%25AD%25E6%25B0%25B4%25E6%25B5%25B4%25E5%25BC%258F%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589&kw=%25E5%258D%2597%25E4%25BA%25AC%25E5%2587%25AF%25E5%25A4%25A9%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%252C%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%252C%25E7%2587%2583%25E6%25B0%2594%25E8%25B0%2583%25E5%258E%258B%25E9%2598%2580%252C%25E5%258A%259B%25E9%25AB%2598%25E8%25B0%2583%25E5%258E%258B%25E5%2599%25A8%252C%25E8%25B4%25B9%25E5%25B8%258C%25E5%25B0%2594%25E8%25B0%2583%25E5%258E%258B%25E5%2599%25A8%252CREGO%25E5%2587%258F%25E5%258E%258B%25E9%2598%2580%252CFRISHER%25E5%2587%258F%25E5%258E%258B%25E9%2598%2580%252C%25E7%2594%25B5%25E7%2583%25AD%25E6%25B0%25B4%25E6%25B5%25B4%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%252C%25E7%2594%25B5%25E7%2583%25AD%25E6%25B0%25B4%25E6%25B5%25B4%25E5%25BC%258F%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589&cu=http%253A%252F%252Fnjkaitian.sooshong.com%252F&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         14.17.102.101
HTTP/1.1 200
                                        
Content-Length: 0
Date: Tue, 14 Nov 2017 10:48:13 GMT


--- Additional Info ---
                                        
                                            GET /datashare/dormer.js HTTP/1.1 
Host: s3m.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US

                                         
                                         121.205.7.237
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Date: Tue, 14 Nov 2017 10:48:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 10 Nov 2017 06:34:13 GMT
Access-Control-Allow-Origin: *
machine: dk111ss.jx.shbt2.qihoo.net
Expires: Wed, 14 Nov 2018 10:48:13 GMT
Cache-Control: max-age=31536000
X-QHCDN: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   50710
Md5:    69b976894e4c2580afef734b766dbf62
Sha1:   573d8c23d133ad68349e5bdf2eb907405d7b9c39
Sha256: aeeba80932d9c6a82089559c6665cc98be0f9338e0cdc81e90624564eba08dac
                                        
                                            GET /bjjs/dsp/mediav1.png HTTP/1.1 
Host: material.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US
Cookie: v=uAu?j_ptbn9r^n811hmd

                                         
                                         121.205.7.237
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 14 Nov 2017 10:48:16 GMT
Content-Length: 429
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 11 Oct 2012 10:03:01 GMT
Expires: Wed, 29 Nov 2017 10:48:16 GMT
Cache-Control: max-age=1296000
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-QHCDN: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 76 x 15, 8-bit/color RGBA, non-interlaced
Size:   429
Md5:    fa5e279f3e0af57f5186514052e522ca
Sha1:   4a5d687cc9c1277bd7366ba3ba61eb129063ba8c
Sha256: 99cd1a45a04861f35dd3695be5222a3dd99716586726d867a2ebfb2344307260
                                        
                                            GET /bjjs/dsp/ad.png HTTP/1.1 
Host: material.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US
Cookie: v=uAu?j_ptbn9r^n811hmd

                                         
                                         121.205.7.237
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 14 Nov 2017 10:48:16 GMT
Content-Length: 1425
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 23 Aug 2016 03:18:57 GMT
Expires: Wed, 29 Nov 2017 10:48:16 GMT
Cache-Control: max-age=1296000
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-QHCDN: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 32 x 14, 8-bit/color RGBA, non-interlaced
Size:   1425
Md5:    92daf1a8b62427de71ad5f903889ad4f
Sha1:   9e8d250e34e1d20037a1bf5751384982970336fe
Sha256: 11e5253d429fd026b88b2512e3de05fde18a4e87396086589cf0d669fb2b43aa
                                        
                                            GET /fpassicc/2673889752--6346594756038381900_240x240.jpg?t=1510554744 HTTP/1.1 
Host: s3m.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fnjkaitian.sooshong.com%2F&ti=%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%7C%E5%8D%97%E4%BA%AC%E5%87%AF%E5%A4%A9%E7%87%83%E6%B0%94%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8%E4%B8%BB%E8%90%A5%E6%B0%94%E5%8C%96%E5%99%A8%2C%E6%B1%BD%E5%8C%96%E5%99%A8%2C%E7%87%83%E6%B0%94%E8%B0%83%E5%8E%8B%E9%98%80%2C%E5%8A%9B%E9%AB%98%E8%B0%83%E5%8E%8B%E5%99%A8%2C%E8%B4%B9%E5%B8%8C%E5%B0%94%E8%B0%83%E5%8E%8B%E5%99%A8%2CREGO%E5%87%8F%E5%8E%8B&tpr=1510656489312&tlm=1510656485&chi=1&ari=2&cpl=10&par=1176x855&pss=1159x2618&pcs=1159x754&ant=0&cmi=92&exps=111000&pis=-1x-1&ps=348x329&dai=3&tcn=1510656489&dri=0&dc=2&drs=1&cdo=-1&cce=true&cfv=10&cec=x-gbk&ccd=24&psr=1176x885&dtm=HTML_POST&dis=0&cja=true&col=en-US
Cookie: v=uAu?j_ptbn9r^n811hmd

                                         
                                         121.205.7.237
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 14 Nov 2017 10:48:15 GMT
Content-Length: 31008
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 14 Nov 2017 03:06:35 GMT
Access-Control-Allow-Origin: *
machine: dk70ss.jx.shbt.qihoo.net
Expires: Wed, 14 Nov 2018 10:48:15 GMT
Cache-Control: max-age=31536000
X-QHCDN: HIT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   31008
Md5:    c4039eeb4c6ac3aabff4d65303924776
Sha1:   a0218a1c642aeaa587a035fd632668fdc28c1e24
Sha256: dd3a1c491cf404dd56318d9fa3f4596b3f50c19853cd4152e66a3a71482e6de2
                                        
                                            GET /inc/m_status.jsp HTTP/1.1 
Host: member.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://njkaitian.sooshong.com/

                                         
                                         120.31.134.30
HTTP/1.1 200 OK
Content-Type: text/html;charset=gb2312
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:27 GMT
Content-Length: 243
Connection: keep-alive
Set-Cookie: JSESSIONID=608AC48D21B96BB5DC2EC273916F20A7; Path=/; HttpOnly
Pragma: No-cache
Cache-Control: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT


--- Additional Info ---
Magic:  ISO-8859 text, with CRLF line terminators
Size:   243
Md5:    c4a137ffc25f1a356d0726539903cf91
Sha1:   bf1f59e3e509c597a30e6512bf73d7f56c7575f1
Sha256: 7a2e4263bb47601bf1f69bc794d0473948af617065733dddb3a87565976c6e51
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70; __cfduid=d840556432f4ced7511a7b12cfa5060fe1510656487; a1164_pages=1; a1164_times=1; __tins__17771164=%7B%22sid%22%3A1510656489446%2C%22vd%22%3A1%2C%22expires%22%3A1510658289446%7D; __51cke__=; __51laig__=1; Hm_lvt_3a2bf59295995a637abc01fb61aeeb3d=1510656491; Hm_lpvt_3a2bf59295995a637abc01fb61aeeb3d=1510656491

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/html;charset=gbk
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:28 GMT
Vary: Accept-Encoding
Expires: Tue, 14 Nov 2017 11:42:28 GMT
Cache-Control: max-age=3600
Age: 355
X-Cache: HIT from squid
Transfer-Encoding: chunked
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 HTML document text, with very long lines, with CRLF, LF line terminators
Size:   26788
Md5:    93d395b983fc4c6a545338eff44b9614
Sha1:   79de416c718c173794c622093da8595e325cbe92
Sha256: 4bab109dbffc7f5bc20a9c3dac4f4815ef9eb188366b2d7e9fa9b820d22a1a25
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: njkaitian.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=FFBA13B95FEED094CAF559CA5ABBDE70; __cfduid=d840556432f4ced7511a7b12cfa5060fe1510656487; a1164_pages=1; a1164_times=1; __tins__17771164=%7B%22sid%22%3A1510656489446%2C%22vd%22%3A1%2C%22expires%22%3A1510658289446%7D; __51cke__=; __51laig__=1; Hm_lvt_3a2bf59295995a637abc01fb61aeeb3d=1510656491; Hm_lpvt_3a2bf59295995a637abc01fb61aeeb3d=1510656491

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/html;charset=gbk
                                        
Server: nginx/1.8.1
Date: Tue, 14 Nov 2017 10:42:28 GMT
Vary: Accept-Encoding
Expires: Tue, 14 Nov 2017 11:42:28 GMT
Cache-Control: max-age=3600
X-Cache: MISS from squid
Transfer-Encoding: chunked
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---